Vulnerability Description
The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized apps to actively request permission to modify data in the database that records information about a user's personal preferences and will be loaded into memory to be read and used when the app is opened. An attacker could tamper with this data to cause an escalation of privilege attack.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Glitter Unicorn Wallpaper Project | Glitter Unicorn Wallpaper | >= 7.0, <= 8.0 |
References
- https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29722/CVE%20detail.mdExploitThird Party Advisory
- https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29722/CVE%20detail.mdExploitThird Party Advisory
FAQ
What is CVE-2023-29722?
CVE-2023-29722 is a vulnerability with a CVSS score of 9.1 (CRITICAL). The Glitter Unicorn Wallpaper app for Android 7.0 thru 8.0 allows unauthorized apps to actively request permission to modify data in the database that records information about a user's personal prefe...
How severe is CVE-2023-29722?
CVE-2023-29722 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-29722?
Check the references section above for vendor advisories and patch information. Affected products include: Glitter Unicorn Wallpaper Project Glitter Unicorn Wallpaper.